git.ipfire.org Git - thirdparty/kernel/stable.git/commit

author	Michael Kelley <mhklinux@outlook.com>
	Mon, 11 Mar 2024 16:15:58 +0000 (09:15 -0700)
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>
	Fri, 17 May 2024 10:02:17 +0000 (12:02 +0200)
commit	82f9e213b124a7d2bb5b16ea35d570260ef467e0
tree	c1d41122e85251014d7708796166772e0819826f	tree \| snapshot
parent	6466a0f6d235c8a18c602cb587160d7e49876db9	commit \| diff

Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted

[ Upstream commit 30d18df6567be09c1433e81993e35e3da573ac48 ]

In CoCo VMs it is possible for the untrusted host to cause
set_memory_encrypted() or set_memory_decrypted() to fail such that an
error is returned and the resulting memory is shared. Callers need to
take care to handle these errors to avoid returning decrypted (shared)
memory to the page allocator, which could lead to functional or security
issues.

The VMBus ring buffer code could free decrypted/shared pages if
set_memory_decrypted() fails. Check the decrypted field in the struct
vmbus_gpadl for the ring buffers to decide whether to free the memory.

Signed-off-by: Michael Kelley <mhklinux@outlook.com>
Reviewed-by: Kuppuswamy Sathyanarayanan <sathyanarayanan.kuppuswamy@linux.intel.com>
Acked-by: Kirill A. Shutemov <kirill.shutemov@linux.intel.com>
Link: https://lore.kernel.org/r/20240311161558.1310-6-mhklinux@outlook.com
Signed-off-by: Wei Liu <wei.liu@kernel.org>
Message-ID: <20240311161558.1310-6-mhklinux@outlook.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>